SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.Referenceshttp://www.securityfocus.com/bid/39625http://secunia.com/advisories/36732https://exchange.xforce.ibmcloud.com/vulnerabilities/57763http://www.exploit-db.com/exploits/12158
